Alternatives and similar repositories for Hunt

Users that are interested in Hunt are comparing it to the libraries listed below

• Mr-Un1k0d3r / MsGraphFunzy
  Scripts to interact with Microsoft Graph APIs
  ☆36Updated 6 months ago
• whokilleddb / SOAPHound
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆33Updated 11 months ago
• slygoo / pssrecon
  ☆22Updated 7 months ago
• skelsec / adiskreader-secretsdump
  Extract registry and NTDS secrets from local or remote disk images
  ☆40Updated last month
• ToweringDragoon / SACL_Scanner
  SACL Scanner is a tool designed to scan and analyze SACLs.
  ☆38Updated 2 months ago
• synacktiv / AADOutsider-py
  Python3 rewrite of AsOutsider features of AADInternals
  ☆46Updated 4 months ago
• redskal / SharpAzbelt
  .NET port of Leron Gray's azbelt tool.
  ☆26Updated last year
• Leo4j / Invoke-ShareHunter
  Enumerate the Domain for Readable and Writable Shares
  ☆18Updated 2 months ago
• ImpostorKeanu / eavesarp-ng
  ☆30Updated last week
• OOAFA / squeegee
  A collection of tools using OCR to extract potential usernames from RDP screenshots.
  ☆30Updated last year
• felmoltor / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆30Updated 2 months ago
• nullenc0de / trust-validator
  Validates priv escalation of AD trusts
  ☆39Updated last month
• heartburn-dev / PKI-Escalate
  Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…
  ☆25Updated last year
• Tamirye / Find-SensitiveAzStorageAccounts
  A PowerShell script designed to detect misconfigured Azure Storage Accounts that could potentially be exploited for privilege escalation …
  ☆12Updated last year
• nyxgeek / autodiscover_enum
  time-based user enum via Basic Auth in Azure against Autodiscover
  ☆32Updated 7 months ago
• rvrsh3ll / FindIngressEmail
  Find Inbound Email Domains
  ☆22Updated last year
• hotnops / SharpGetEntraToken
  A dotnet executable to get an Entra token in an authenticated runtime
  ☆11Updated 6 months ago
• myexploit / living_off_the_land
  ☆44Updated 10 months ago
• SySS-Research / ldif2bloodhound
  Convert an LDIF file to JSON files ingestible by BloodHound
  ☆42Updated last month
• surajpkhetani / Active-Directory-Permission-Abuse
  ☆12Updated 2 years ago
• xpn / adfstoolkit
  ☆34Updated 4 months ago
• NocteDefensor / Sharelord
  .NET Assembly that creates network shares,sets ACE entries for directories, sets share perms, and deletes shares. Learning project for C#
  ☆11Updated 6 months ago
• Tw1sm / pyldapsearch
  Tool for issuing manual LDAP queries which offers bofhound compatible output
  ☆22Updated 2 months ago
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆38Updated 9 months ago
• GhostManager / cobalt_sync
  Standalone Cobalt Strike operation logging Aggressor script for Ghostwriter 2.0+
  ☆26Updated 9 months ago
• skelsec / aroadtools
  fully async implementation of Dirkjan's ROADTools
  ☆31Updated last month
• maliciousgroup / GOADvSphere
  A vSphere deployment of GOADv2 BETA Testing (v0.1)
  ☆26Updated last year
• kapellos / VladimiRED
  ☆18Updated 4 months ago
• EspressoCake / ADIDNS_Parser
  Parser and reconciliation tooling for large Active Directory environments.
  ☆33Updated 2 months ago
• chryzsh / docker-cobaltstrike
  ☆11Updated 2 months ago